Web security tools and best practices

Get news and expert advice on Web security tools and threats. Find out about current threats against Web applications, web security tools, SSL and TLS encryption, Web services, SOA, web access control, web server security, URL filtering, content filtering and browser security.

August 20, 2021 20 Aug'21
Real estate firm turns to AI vendor for API security

API security is under scrutiny as businesses digitally transform, and startup vendors are emerging with fresh approaches for secure cloud computing.
May 22, 2019 22 May'19
G Suite passwords insecurely stored in two separate incidents

Google disclosed two separate incidents in which G Suite passwords were stored insecurely, and in one of those incidents, the passwords were stored improperly for 14 years.
June 08, 2018 08 Jun'18
Posting passwords on Trello leads to latest data exposure mess

Amazon Web Services and Google Groups have seen data exposures due to poor configurations by users. Now, some have accidentally shared passwords on Trello boards.
January 22, 2016 22 Jan'16
LostPass security researcher questions LastPass responses

The security researcher behind the LostPass phishing attack on LastPass has criticized the company's reaction and responses to his findings.

Bring yourself up to speed with our introductory content

Uniform Resource Identifier (URI)

A Uniform Resource Identifier (URI) is a character sequence that identifies a logical (abstract) or physical resource -- usually, but not always, connected to the internet. A URI distinguishes one resource from another. Continue Reading
Amazon Trust Services

Amazon Trust Services is a certificate authority created and operated by Amazon Web Services. Continue Reading
Tor browser

The Tor (the onion routing) browser is a web browser designed for anonymous web surfing and protection against traffic analysis. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Cloud-native security benefits and use cases

'Cloud native' has described applications and services for years, but its place in security is less clear. Get insight into cloud-native security from expert Dave Shackleford. Continue Reading
8 blockchain security risks to weigh before adoption

Blockchain and smart contracts have their own unique vulnerabilities. But poor code testing, cryptographic keys and generic network attacks will get you, too. Continue Reading
Web application (Web app)

A Web application (Web app) is an application program that is stored on a remote server and delivered over the Internet through a browser interface. Continue Reading

Learn to apply best practices and optimize your operations.

5 bad practices that lead to insecure APIs in cloud computing

API security often feels complicated. However, your IT team will go a long way in securing its services if it avoids these common pitfalls in API design and implementation. Continue Reading
What IT needs to know about Chrome extension security issues

Google Chrome extensions can improve user experience, but they could access a lot of user data. Admins should take control over users' extensions for security and privacy reasons. Continue Reading
4 fundamental practices for serverless architecture security

Are you ready for serverless security? Learn about four critical planning considerations software teams need to focus on if they plan to adopt serverless. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Targeted attacks make desktop browser security a must

IT can fight browser-based attacks by separating browsers from the OS itself. Get to know tools such as Citrix Secure Browser Service and Windows Defender Application Guard. Continue Reading
Mark Curphey just gave you the tools to make safe apps -- for free?

Is it possible to build software speedily but safely? Startup CEO Mark Curphey thinks so, and he's using big data analytics to make open source code safe for developers everywhere. Continue Reading
Cloud-based application security: Preventing security breaches

Cloud-based application security is becoming an increasingly prevalent concern. Uncover three key best practices for preventing security breaches. Continue Reading